Apple bug bounty is now open for all the public security researchers, the program which was available only for invite only basis. If you are a security researcher then you can now use this bug bounty program and start earning upto $1,000,000 depending on the kind of bug you are reporting to apple.
This bug bounty program also includes beta software and apple promises discovering bugs in beta editions will earn 50 % More bounty. You will get bounty if you find vulnerability in iCloud or if you have an POC for lock screen bypass, user data extraction, etc starting from $100,000 with $1,000,000 reward for successful Zero-click kernel code execution with persistence and kernel PAC bypass.
Some conditions that you have to follow for reporting..
This bug bounty program also includes beta software and apple promises discovering bugs in beta editions will earn 50 % More bounty. You will get bounty if you find vulnerability in iCloud or if you have an POC for lock screen bypass, user data extraction, etc starting from $100,000 with $1,000,000 reward for successful Zero-click kernel code execution with persistence and kernel PAC bypass.
Some conditions that you have to follow for reporting..
- A detailed description of the issues being reported.
- Any prerequisites and steps to get the system to an impacted state.
- A reasonably reliable exploit for the issue being reported.
- Enough information for Apple to be able to reasonably reproduce the issue
If you have a bug then contact apple directly at product-security@apple.com.
